Lucene search
+L

55 matches found

ATTACKERKB
ATTACKERKB
added 3 hours ago2 views

CVE-2026-64103

In the Linux kernel, the following vulnerability has been resolved: scsi: isci: Fix use-after-free in device removal path The ISCI completion tasklet is initialized in iscihostalloc drivers/scsi/isci/init.c:496 and scheduled from both MSI-X and legacy interrupt handlers...

5.3AI score
Exploits0References9Affected Software1
EUVD
EUVD
added 3 hours ago5 views

EUVD-2026-45788

In the Linux kernel, the following vulnerability has been resolved: scsi: isci: Fix use-after-free in device removal path The ISCI completion tasklet is initialized in iscihostalloc drivers/scsi/isci/init.c:496 and scheduled from both MSI-X and legacy interrupt handlers...

5.5AI score
Exploits0References8
CVE
CVE
added 3 hours ago4 views

CVE-2026-63977

CVE-2026-63977 affects the Linux kernel DPLL subsystem for zl3073x. The issue stemmed from the change_work mechanism used to send device-change notifications from DPLL device callbacks under dpll_lock, which could race during device teardown if change_work was re-scheduled after cancel_work_sync(...

5.4AI score
Exploits0References2
EUVD
EUVD
added 3 hours ago3 views

EUVD-2026-45750

In the Linux kernel, the following vulnerability has been resolved: dpll: zl3073x: use dplldevicechangentf and remove changework The changework was introduced to send device change notifications from DPLL device callbacks without deadlocking on dplllock, since the callbacks are already invoked...

5.4AI score
Exploits0References2
Positive Technologies
Positive Technologies
added 18 hours ago3 views

PT-2026-61294

In the Linux kernel, the following vulnerability has been resolved: dpll: zl3073x: use dpll device change ntf and remove change work The change work was introduced to send device change notifications from DPLL device callbacks without deadlocking on dpll lock, since the callbacks are already...

5.3AI score
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2026/06/28 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2026-53259

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - ipv6: anycast: insert aca into global hash under idev-lock syzbot reported a splat 1: a slab-use-after- free in ipv6chkacastaddr, which walks the global...

7.8CVSS5.9AI score0.00123EPSS
Exploits0References3
EUVD
EUVD
added 2026/06/25 8:39 a.m.8 views

EUVD-2026-39210

In the Linux kernel, the following vulnerability has been resolved: ipv6: anycast: insert aca into global hash under idev-lock syzbot reported a splat 1: a slab-use-after-free in ipv6chkacastaddr, which walks the global inet6acaddrlst hash under RCU and dereferences a struct ifacaddr6 that has...

5.7AI score0.00123EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/06/25 12:0 a.m.7 views

PT-2026-52354

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A slab-use-after-free issue exists in the ipv6 chk acast addr function. The problem occurs when an anycast address aca is allocated and added to the idev-ac list under idev-lock, but is...

7.8CVSS6.1AI score0.00123EPSS
Exploits0References18
AstraLinux
AstraLinux
added 2026/06/19 11:10 a.m.5 views

Astra Linux – Vulnerability in Linux 5.15

In the Linux kernel, the following vulnerabilities have been resolved: xsk: Fixed a race condition in socket teardown Fixed a race condition in the xsk socket teardown code that could lead to a NULL pointer dereferencing. The current xskunbindcode in xskunbinddev starts by setting xs-state to...

4.7CVSS6.2AI score0.00169EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/06/08 11:15 a.m.18 views

CVE-2026-40290

A flaw was found in OP-TEE Trusted Execution Environment. A local attacker could exploit a user-after-free UAF race condition in the shared memory teardown logic when OP-TEE is configured as a Secure Partition Management Controller SPMC for Secure EL0 S-EL0 Secure Partitions. This vulnerability...

7.8CVSS6AI score0.00187EPSS
Exploits1References2
NVD
NVD
added 2026/06/03 6:16 p.m.16 views

CVE-2026-46267

In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llcshdlcdeinit purges SHDLC skb queues and frees the llcshdlc structure while its timers and state machine work may still be active. Timer callbacks can schedule smwork...

7.8CVSS0.00121EPSS
Exploits0References7
EUVD
EUVD
added 2026/06/03 4:45 p.m.18 views

EUVD-2026-34139

OP-TEE is a Trusted Execution Environment TEE designed as companion to a non-secure Linux kernel running on Arm; Cortex-A cores using the TrustZone technology. Starting in version 3.16.0 and prior to 4.11.0, a user-after-free UAF race condition exists in the shared memory teardown logic of FF-A...

7.8CVSS5.8AI score0.00187EPSS
Exploits1References1
EUVD
EUVD
added 2026/06/03 3:50 p.m.16 views

EUVD-2026-34129

In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llcshdlcdeinit purges SHDLC skb queues and frees the llcshdlc structure while its timers and state machine work may still be active. Timer callbacks can schedule smwork...

5.7AI score0.00121EPSS
Exploits0References7
Cvelist
Cvelist
added 2026/06/03 3:50 p.m.46 views

CVE-2026-46267 nfc: hci: shdlc: Stop timers and work before freeing context

In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llcshdlcdeinit purges SHDLC skb queues and frees the llcshdlc structure while its timers and state machine work may still be active. Timer callbacks can schedule smwork...

0.00121EPSS
Exploits0References7
CVE
CVE
added 2026/06/03 3:50 p.m.32 views

CVE-2026-46267

CVE-2026-46267 affects the Linux kernel NFC HCI SHDLC subsystem. The root cause is that timers and state-machine work can remain active during llc_shdlc_deinit(), which purges SHDLC skb queues and frees the llc_shdlc structure while callbacks may still access SHDLC state and queues. If teardown r...

7.8CVSS5.7AI score0.00121EPSS
Exploits0References7Affected Software1
OSV
OSV
added 2026/06/03 3:50 p.m.3 views

CVE-2026-46267 nfc: hci: shdlc: Stop timers and work before freeing context

In the Linux kernel, the following vulnerability has been resolved: nfc: hci: shdlc: Stop timers and work before freeing context llcshdlcdeinit purges SHDLC skb queues and frees the llcshdlc structure while its timers and state machine work may still be active. Timer callbacks can schedule smwork...

7.8CVSS6.5AI score0.00121EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2026/06/03 12:0 a.m.21 views

PT-2026-46030

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description A Use-After-Free UAF condition exists in the Linux kernel's NFC HCI SHDLC implementation. The function llc shdlc deinit purges SHDLC skb queues and frees the llc shdlc structure while...

7.8CVSS5.8AI score0.00121EPSS
Exploits0
SUSE CVE
SUSE CVE
added 2026/05/29 1:16 a.m.27 views

SUSE CVE-2026-46135

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix race between ICReq handling and queue teardown nvmettcphandleicreq updates queue-state after sending an Initialization Connection Response ICResp, but it does so without serializing against target-side queue...

7CVSS5.8AI score0.00353EPSS
Exploits0References7
NVD
NVD
added 2026/05/28 10:16 a.m.20 views

CVE-2026-46213

In the Linux kernel, the following vulnerability has been resolved: HID: appletb-kbd: fix UAF in inactivity-timer cleanup path Commit 38224c472a03 "HID: appletb-kbd: fix slab use-after-free bug in appletbkbdprobe" added timerdeletesync&kbd-inactivitytimer to both the probe closehw error path and...

7.8CVSS0.00124EPSS
Exploits0References3
NVD
NVD
added 2026/05/28 10:16 a.m.17 views

CVE-2026-46135

In the Linux kernel, the following vulnerability has been resolved: nvmet-tcp: fix race between ICReq handling and queue teardown nvmettcphandleicreq updates queue-state after sending an Initialization Connection Response ICResp, but it does so without serializing against target-side queue...

9.8CVSS0.00353EPSS
Exploits0References5
Rows per page
Query Builder